$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: LULC79bR5urCWK9LJ8T/IwclWUcY8RdpHGD/jOzeh8c= Subject key identifier: 69:0D:D8:11:0B:6A:8F:1B:E1:6E:B8:97:6C:6F:E2:D2:40:C1:DC:ED Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 71EB4E8A99754422D30D098D810D5360B7CB9EED Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa Signing time: Mon 11 Nov 2024 08:00:01 +0000 ROA not before: Mon 11 Nov 2024 07:55:01 +0000 ROA not after: Mon 10 Nov 2025 08:00:01 +0000 asID: 38750 IP address blocks: 202.179.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:eb:4e:8a:99:75:44:22:d3:0d:09:8d:81:0d:53:60:b7:cb:9e:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Nov 11 07:55:01 2024 GMT Not After : Nov 10 08:00:01 2025 GMT Subject: CN=690DD8110B6A8F1BE16EB8976C6FE2D240C1DCED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:05:11:44:dc:86:32:84:9a:b5:70:7e:c5:e9: bd:e1:3f:a7:89:b1:6b:24:37:fa:75:09:ec:bc:9a: a4:69:11:3b:20:54:46:ab:99:31:47:e2:b0:4e:2c: f7:bf:20:94:fc:5f:18:a0:64:f4:e7:22:d0:5d:44: 24:c1:6e:d7:36:94:05:6a:44:a0:03:82:9b:20:43: e9:5e:7e:cd:38:ed:30:42:bd:24:14:4b:c7:51:ba: ed:1c:d2:08:a9:89:f1:6c:96:47:f0:23:82:db:b8: ef:d9:d6:b1:58:0f:12:79:7d:ca:77:f6:99:c5:67: 90:25:61:b3:de:b3:49:db:b5:5e:ca:99:1c:3e:91: e2:01:cf:a6:dd:d9:e4:2c:41:06:42:06:5c:7d:a6: 08:86:6b:ed:a0:ff:ee:b2:80:df:eb:80:47:96:74: 30:ad:5c:ce:1a:06:cd:93:6d:32:58:44:74:51:62: 79:1a:e8:06:9d:3d:5c:19:a1:36:16:12:4c:67:81: 47:e3:d8:e4:e3:c5:89:7e:cb:ce:2d:02:15:43:ac: bf:c1:8e:11:7d:3e:6f:c0:da:a7:f8:a8:49:c4:cf: 82:09:00:5c:df:89:74:0f:15:24:89:f3:ca:a7:eb: d6:a7:ab:77:3f:68:fa:90:41:f3:37:a3:03:ef:f8: 20:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:0D:D8:11:0B:6A:8F:1B:E1:6E:B8:97:6C:6F:E2:D2:40:C1:DC:ED X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.185.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:25:de:73:26:05:71:0f:bb:70:50:63:c1:40:90:da:02:5d: 35:f2:7a:ed:59:39:49:6f:27:4a:f8:b9:13:1f:cb:22:29:12: 0d:65:cd:ea:a6:97:61:41:2c:8d:e3:f1:d5:2b:0d:95:74:31: 7b:40:da:73:cc:4f:40:90:30:8c:cf:ed:70:c2:ad:f0:06:98: d5:77:7c:25:bd:a6:cb:9c:3b:db:f2:ea:eb:91:b1:92:af:50: 5d:17:b2:fa:49:c3:a3:35:99:66:74:47:53:51:f8:70:87:0e: f9:c6:97:c0:fc:55:26:10:ae:ec:7c:d0:76:6f:85:54:23:be: 97:d2:e8:46:17:19:ee:f4:9e:cc:ac:b7:68:af:5d:24:c4:ae: c2:13:39:c9:d1:62:48:f9:fb:b4:7e:51:de:a3:09:e0:ec:72: 16:32:d1:d5:9e:68:50:fd:6d:05:a2:fe:57:46:f5:63:00:d9: ba:fb:57:cb:d1:13:ab:36:af:08:7c:eb:09:88:61:8b:59:0f: 93:b9:88:d7:96:d8:c5:b4:2d:c6:fc:c5:0a:2f:d5:15:c8:96: ef:e7:af:47:68:7a:c4:16:c6:a9:46:30:cb:b6:11:14:08:53: 39:03:0f:61:de:d0:64:41:41:53:17:8c:8a:52:07:f5:4e:d4: 9d:7c:ac:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcetOipl1RCLTDQmNgQ1TYLfLnu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNDExMTEwNzU1MDFaFw0yNTExMTAwODAwMDFaMDMxMTAvBgNV BAMTKDY5MEREODExMEI2QThGMUJFMTZFQjg5NzZDNkZFMkQyNDBDMURDRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqBRFE3IYyhJq1cH7F6b3hP6eJ sWskN/p1Cey8mqRpETsgVEarmTFH4rBOLPe/IJT8XxigZPTnItBdRCTBbtc2lAVq RKADgpsgQ+lefs047TBCvSQUS8dRuu0c0gipifFslkfwI4LbuO/Z1rFYDxJ5fcp3 9pnFZ5AlYbPes0nbtV7KmRw+keIBz6bd2eQsQQZCBlx9pgiGa+2g/+6ygN/rgEeW dDCtXM4aBs2TbTJYRHRRYnka6AadPVwZoTYWEkxngUfj2OTjxYl+y84tAhVDrL/B jhF9Pm/A2qf4qEnEz4IJAFzfiXQPFSSJ88qn69anq3c/aPqQQfM3owPv+CC9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaQ3YEQtqjxvhbriXbG/i0kDB3O0wHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO5MA0GCSqG SIb3DQEBCwUAA4IBAQA8Jd5zJgVxD7twUGPBQJDaAl018nrtWTlJbydK+LkTH8si KRINZc3qppdhQSyN4/HVKw2VdDF7QNpzzE9AkDCMz+1wwq3wBpjVd3wlvabLnDvb 8urrkbGSr1BdF7L6ScOjNZlmdEdTUfhwhw75xpfA/FUmEK7sfNB2b4VUI76X0uhG Fxnu9J7MrLdor10kxK7CEznJ0WJI+fu0flHeowng7HIWMtHVnmhQ/W0Fov5XRvVj ANm6+1fL0ROrNq8IfOsJiGGLWQ+TuYjXltjFtC3G/MUKL9UVyJbv569HaHrEFsap RjDLthEUCFM5Aw9h3tBkQUFTF4yKUgf1TtSdfKxv -----END CERTIFICATE-----Generated at Sun Nov 24 17:17:41 2024 by rpki-client on console-fra.rpki-client.org